CVE-2014-0754

Home/CVE/Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec befo

CVE

Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec befo

Directory traversal vulnerability in SchneiderWEB on Schneider Electric Modicon PLC Ethernet modules 140CPU65x Exec before 5.5, 140NOC78x Exec before 1.62, 140NOE77x Exec before 6.2, BMXNOC0401 before 2.05, BMXNOE0100 before 2.9, BMXNOE0110x Exec before 6.0, TSXETC101 Exec before 2.04, TSXETY4103x Exec before 5.7, TSXETY5103x Exec before 5.9, TSXP57x ETYPort Exec before 5.7, and TSXP57x Ethernet Copro Exec before 5.5 allows remote attackers to visit arbitrary resources via a crafted HTTP request.

HIGH · CVSS 10 EPSS 0.18902

Schedule remediation

EPSS ≥ 0.10 - elevated exploitation probability
EPSS percentile: top 5% of all CVEs by exploitation likelihood
CVSS base score ≥ 7.0

Sigma rules0 YARA rules0

⬡

Weakness Classification

CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

▤

Affected Products & Versions

schneider-electric stbnic2212 firmwareall versions
schneider-electric stbnip2212 firmwareall versions
schneider-electric tsxetc0101 firmwareall versions
schneider-electric tsxetc100 firmwareall versions
schneider-electric tsxp573623mc firmwareall versions
schneider-electric tsxety110ws firmwareall versions
schneider-electric tsxp574634m firmwareall versions
schneider-electric tsxety110wsc firmwareall versions
Show all 43 affected productsschneider-electric tsxp574823am firmwareall versions
schneider-electric tsxety4103 firmwareall versions
schneider-electric tsxp574823m firmwareall versions
schneider-electric tsxety4103c firmwareall versions
schneider-electric tsxp574823mc firmwareall versions
schneider-electric tsxety5103 firmwareall versions
schneider-electric tsxp575634m firmwareall versions
schneider-electric tsxety5103c firmwareall versions
schneider-electric tsxp576634m firmwareall versions
schneider-electric tsxetz410 firmwareall versions
schneider-electric tsxwmy100 firmwareall versions
schneider-electric tsxetz510 firmwareall versions
schneider-electric tsxwmy100c firmwareall versions
schneider-electric tsxntp100 firmwareall versions
schneider-electric modicon m580 bmxnoc0402 firmwareall versions
schneider-electric modicon m340 bmxnoe0100 firmwareall versions
schneider-electric modicon m340 bmxnoe0110 firmwareall versions
schneider-electric modicon m340 bmxnoe0110h firmwareall versions
schneider-electric modicon m340 bmxnor0200h firmwareall versions
schneider-electric modicon m340 bmxp342020 firmwareall versions
schneider-electric modicon m340 bmxp342020h firmwareall versions
schneider-electric modicon m340 bmxp342030 firmwareall versions
schneider-electric modicon m340 bmxp3420302 firmwareall versions
schneider-electric modicon m340 bmxp3420302h firmwareall versions
schneider-electric modicon m340 bmxp342030h firmwareall versions
schneider-electric modicon m340 bmxnoc0401 firmwareall versions
schneider-electric 171ccc96020 firmwareall versions
schneider-electric 171ccc96020c firmwareall versions
schneider-electric 171ccc96030 firmwareall versions
schneider-electric 171ccc96030c firmwareall versions
schneider-electric 171ccc98020 firmwareall versions
schneider-electric 171ccc98030 firmwareall versions
schneider-electric tsxp571634m firmwareall versions
schneider-electric tsxp572634m firmwareall versions
schneider-electric tsxp573634m firmwareall versions

▣

Scoring & Timeline

HIGH · CVSS v2 (legacy) · ics-cert@hq.dhs.gov

View on NVD

This CVE predates CVSS v3; the legacy v2 score is shown so triage still has a severity to work with.

v2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Published to NVD03 Oct 2014 · 06:55 PM

⚑

Vendor Advisories

cisa-csafcisa-csaf-csaf_files-OT-white-2014-icsa-14-273-01

🔗

References & Sources

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

http://www.securityfocus.com/bid/70193Third Party AdvisoryVDB Entry

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2014-260-01

https://www.cisa.gov/news-events/ics-advisories/icsa-14-273-01

http://download.schneider-electric.com/files?p_Reference=SEVD-2014-260-01&p_EnDocType=SoftwarePatchVendor Advisory

https://ics-cert.us-cert.gov/advisories/ICSA-14-273-01Third Party AdvisoryUS Government Resource

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin